Weekly released mini-blogs featuring signs you may be hacked and how to fix them.
Your online passwords suddenly change
If one or more of your online passwords suddenly change, you’ve been hacked or the website where you have a user account has been hacked. Usually what has happened is that you have responded to an authentic-looking email that claims to be from that website (called a phishing email). In that case, you have unintentionally given the bad guy your logon information. He or she logs on to your account, changes your password to prevent you from stopping them, and uses your account to steal money from you and your acquaintances; all the while pretending to be you.
WHAT TO DO – BEFORE INFECTION
Websites rarely send emails asking you to provide your logon information. When in doubt, go to the website directly; don’t use the links sent to you in the email. See if the same information is being requested when you log on using a known legitimate method. You can also call the service via their phone line or email them to report the suspected phishing email or to confirm its validity.
WHAT TO DO – AFTER INFECTON
- Immediately notify all of your contacts about your compromised account. Do this to minimize the damage being done to others.
- Contact the online service to report the compromised account. Most online service are used to this sort of sabotage and can quickly get the account back under control with a new password in a few minutes. Some services even have the whole process automated. A few services even have a “My friend’s been hacked!” button that lets your friends start the process. This is helpful because your friends often know your account has been compromised before you do.
- If the compromised logon information is used on other websites, immediately change those passwords.
- Consider using online services that provide two-factor authentication. It makes your account much harder to steal.